Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/owZj9ioKrywB17cdL2TEjw39dyY.roa
File: owZj9ioKrywB17cdL2TEjw39dyY.roa (raw, json)
Hash identifier: dsmh7oJ7Ck91y3OQewrnwXTkO+629ATedBe/JwfJPv8=
Subject key identifier: A3:06:63:F6:2A:0A:AF:2C:01:D7:B7:1D:2F:64:C4:8F:0D:FD:77:26
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 019057770E230E1FB1D4832DE9504C58B4F6
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/owZj9ioKrywB17cdL2TEjw39dyY.roa
Signing time: Thu 27 Jun 2024 02:12:18 +0000
ROA not before: Thu 27 Jun 2024 02:12:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 27 Jun 2024 03:04:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:57:77:0e:23:0e:1f:b1:d4:83:2d:e9:50:4c:58:b4:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 27 02:12:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a30663f62a0aaf2c01d7b71d2f64c48f0dfd7726
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:6c:b4:c6:5f:2c:e4:a1:75:f5:c5:68:cc:d0:
94:ea:87:a9:5f:49:8a:bf:31:c3:b4:4f:49:7e:9f:
d2:25:ec:4b:15:c7:57:9e:53:88:b0:04:72:99:02:
17:89:d2:82:04:1b:3e:2f:b0:89:46:61:02:2d:5f:
0b:bc:0b:06:ee:24:83:4a:b1:71:b6:c6:41:33:66:
39:38:c1:14:cf:23:7a:db:77:29:a4:22:9e:ad:0e:
d0:5a:0e:fb:f0:86:15:a0:1a:0d:f4:9b:8b:d8:f3:
37:60:7d:15:d4:88:ad:ed:6b:e4:95:bb:24:33:a5:
ea:c9:2d:94:31:b0:74:20:31:f6:97:a5:ba:46:eb:
cf:6e:ac:ae:26:af:d0:f7:2b:22:a6:59:ba:98:e6:
1a:7c:f9:12:e0:88:c6:a9:26:63:39:3b:b3:7a:3e:
1f:dc:4a:1b:ca:fb:e5:ab:be:6d:25:26:b8:86:b3:
f8:02:d0:c6:b4:ee:32:3c:e7:29:64:45:67:d9:90:
76:09:7c:b4:88:ff:ce:aa:5e:0e:9e:61:9e:59:10:
1b:62:ca:b0:b5:bd:85:6e:d7:cb:f0:8a:be:80:4f:
2c:14:46:f4:8c:8b:06:58:fe:be:66:58:3b:a4:7b:
ca:37:94:56:78:34:2b:92:6a:88:c1:c3:30:48:81:
9f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:06:63:F6:2A:0A:AF:2C:01:D7:B7:1D:2F:64:C4:8F:0D:FD:77:26
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/owZj9ioKrywB17cdL2TEjw39dyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
66:0d:e5:74:0f:c9:2d:24:64:9b:0c:5a:a0:4d:c1:9e:30:f2:
cc:57:eb:1a:36:ec:c9:38:2d:a8:05:f5:e0:9d:5b:72:5d:e2:
6c:1e:95:03:3a:ae:21:44:d9:97:4a:19:f8:1d:bb:54:6c:c9:
ee:38:07:4a:6f:c7:68:23:81:6a:45:20:7c:99:4e:3a:f3:b9:
11:2e:b9:d7:72:98:a5:f8:94:d4:50:cf:0b:75:ea:e9:30:52:
63:af:cf:87:90:84:34:d2:ef:1b:9e:ca:87:dd:2b:be:94:13:
a8:cb:6c:85:19:4c:2f:7f:ef:e8:37:ee:41:09:61:20:e8:79:
c9:c5:a9:96:93:85:ab:a7:68:78:b9:e4:18:50:06:04:ff:d0:
09:20:43:1b:38:fc:c2:5e:53:21:65:79:64:e9:ce:aa:d5:fe:
96:a6:46:cf:d4:c7:00:21:5d:2a:8e:29:ea:9e:45:48:bf:75:
89:e7:07:99:0d:fa:c4:1d:38:9a:d9:72:05:07:60:41:2a:04:
03:41:c9:74:82:bc:18:48:ba:b2:ae:17:8b:17:74:64:51:4d:
4d:bd:fd:25:ce:59:da:b2:71:4b:21:4f:a6:9c:5b:04:96:c5:
50:e4:61:25:1b:d8:7d:69:8d:95:a4:33:a4:0b:fd:09:2d:8e:
cc:3d:de:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 27 07:39:39 2024 by rpki-client on console-ams.rpki-client.org